Apr 6 2023
Apr 5 2023
Mar 30 2023
Mar 27 2023
Mar 26 2023
I'm available to configure an inboud email receiver via a simple IMAP spooler, thanks to this:
Oct 31 2022
Sep 20 2022
Thank you for your work on this, Dan!
Sep 9 2022
(should also include the rHP -> /home/ stuff)
Sep 6 2022
Aug 31 2022
Jul 12 2022
Per discussion during {E9}
Apr 19 2022
This is a direct result of T15090: CVE-2022-24765 - Multi-user Git Privilege Escalation - confirmed in the Nginx error logs:
STDERR
fatal: unsafe repository ('/var/repo/1' is owned by someone else)
To add an exception for this directory, call:Hmm, possibly depending on how it's hosted? What I saw when that CVE was announced on a local instance and on secure. was like the below screenshot, where the repo page was still visible but file structure and recent commits were b0rked:
Related to T15090: CVE-2022-24765 - Multi-user Git Privilege Escalation perhaps? Revisions are stored in the database that's why they're viewable, but the main repository page requires a call to git.
Mar 21 2022
Closing this task now, to prevent it from turning into a perpetual task.
The choice to not allow administrators to edit profiles is a strange one... at the very least, we should probably upstream Mukunda's patch.
Another one popped up: https://we.phorge.it/p/seo-auckland/
Mar 14 2022
Yeah admittedly what I did was just a hack because I didn't want to implement storage and UI for a new "hidden" boolean flag.
Mar 13 2022
Sep 5 2021
Now that I look at this some more, this isn’t quite done - there are still some components of phorge that are missing projects.
I’ll note here that I’m going to work on creating projects for some of the prototypes that do get used.
Aug 12 2021
Jul 28 2021
Jul 27 2021
Jul 20 2021
Just a note that Trusted Contributors can’t self grow beyond admins adding people currently as to add members you need to be able to edit the project. Currently only admins can edit the project.
Jul 16 2021
Yea I think it will be easiest to host this on the same server that's running we.phorge.it. If we're able to build it as an extension application for phabricator it can be setup in the same installation and then we can route the web server to host it properly.
I think that the best choice is to keep everything in one place, so create the presentation site on the same infrastructure of we.phorge.it
sorry for late reply. I can start working on it now. Where will be it hosted? Do you have some preference? We can use also my company infrastructure and change DNS record for a 3rd level to point to the IP.
Jul 15 2021
Jul 11 2021
For this phorge instance, I think we should configure auth providers to allow logging in with Github/Google etc.
Jun 28 2021
Per discussion on Zulip.
Jun 25 2021
Jun 24 2021
@jupe yea I figure similar to the Phabricator landing page on https://phacility.com/phabricator/ I think we want a basic static page which showcases the project & features, along with some form of T15010, then points to the other content on this install.